Listing of Claims : 

1 . (Currently Amended) An electronic voting method, comprising the steps of: 

obtaining from a signer apparatus, using according to a fair blind signature 
scheme, a digital signature (y,) of a data signal (*,■) generated from a voter 
apparatus, said data signal comprising [[a]] an encrypted vote (v,) of a voter; and 

establishing, at a trusted authority apparatus, a link between a giv e n 
digitally aignod data signal a data pair (xu v, ) comprising said data signal and said 
digital signature, and a signing session in which said digital signature? data pair (x L . 
%X was generated , the fair blind signature scheme permitting establishment of the 
link via a tracing protocol included in the fair blind signature scheme. rr.il said 
truotod authority apparatuo being onablod to ostablioh tho link via a tracing 
protocol included in tho fair blind ochomo [[.]] 

2. (Currently Amended) The voting method of claim 1, wherein the fair blind signature 
scheme comprises a threshold fair blind signature scheme in which the digital signature is 
obtained generated bv cooperation of a number t of n servers, where t < n. and where n-t + 1 
servers need to be honest, from a sub not of a group ef-servegs ™hirh fnrm said pi ™™- ^p p n rn ft ic, 
the group of sorvoro containing n sorvors and tho sub cot containing t oervero, whoro t < » [[.]] 

3. (Currently Amended) The voting method of claim 1, wherein the data signal (x,) 
corresponds to the encrypted vote (v/) of the voter which is encrypted according to a first 
encryption scheme (E TM ), said first encryption scheme being the encryption scheme of a first 
mix-net (TM) contained in a votor tallying vote-tallving module^,]] and tho mothod furthor 
compriooo the stop of using paid first mix not (TM) to apply a decryption oohomo (D m ) which is 
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of said firot oncryption ochomo to oaid data signal fo) at oaid voter talking modulo to 



4. (Currently Amended) The voting method of claim [[20]] 3, and further comprising the 
steps of: 

receiving from a voter apparatus, at a server module of said signer 
apparatus, a pl urality of voter data (Id, C. e,. s ,) during a voting process, one of 
said plural voter data (Id, C. e,. s ,) comprising a signed blinded encrypted data 
(ej) corresponding to the encrypted vote (v,) of a respective voter (v\ said vote 
being encrypted according to the first encryption scheme (E t m\ blinded by said 
voter, and digitally signed by said voter: 

when the voting process has ended, publishing a voter data list (L*s) of all 
voter data received from the voter apparatus: 

during the voting process, receiving at a ballot-box module, from the voter 



apparatus, a plurality of ballot d< 


ita (Idu Ci, d, o?). one of said plural ballot data 


comprising a signed encrypted di 


ita signal ftx), said signed encrypted data signal 


(ad corresponding to the data sia 


lal (xi) of a respective voter encrypted according 


to a second encryption scheme (Em) of a second mix-net (M) contained in a vote- 


randomizing module, and digitally signed by said signer apparatus: 


verifying the signature of said signed encrypted data signal (rr^: 


when the voting process h 


as ended, publishing a ballot data list (L™) of all 



ballot data having a valid voter signature: 

receiving, by a ballot-order-randomizing module, a batch of encrypted 
data signals (c ( ) from said ballot-box module when the voting process has ended. 




"[•]] 
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said encrypted data signals being in a first order within said batch of encrypted 
data signals (c/);[[,]] each e ncrypt e d data signal (c») comprising data e ncrypted 
according to a s e cond e ncryption sch e m e (E M ) and said data including a 
r e sp e ctive data signal fe), tho oncrypt e d data signal (c») including the vot e (y t ) of 
the vot e r subject e d to plural l e v e ls of e neryption [[;]] 

retrieving, in by said ballot-order-randomizing module, in said batch of 
encrypted data signals (q ), each respective data pair (x l} v,) signal (x t ) from th e 
reopoctivo oncrypted data signal (c t ) in said batch of oncrypted data signals (cj ) by 
applying a second decryption scheme (D M ) which is an inverse of said second 
encryption scheme (Em); 

outputtin g, by said ballot-order-randomizing module, th e r e tri e v e d data 
signals (x t ) for said batch of encrypted data s ignals (c^ a data-pair list (L) of said 
retrieved data pairs (x 1 , yj ) in a second order which is different order from said 
first order; and 

receiving, by said vote-tallying module, said retrieved data signals fa ) 
pairs (x L , v/ ) in said diff e r e nt second order. 

5. - 8. (Canceled) 

9. (Currently Amended) The voting method of claim 1, further comprising the steps of: 

receiving said data signal fa) to be digitally signed for the digital signature 
according to said fair blind signature scheme at a server module of said signer 
apparatus, said data signal fa) comprising the vote (v,) selected by the voter (¥$, 
said vote (v ( ) being encrypted according to a first encryption scheme (E m ), 
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blinded according to said fair blind signature scheme and digitally signed 
according to a digital signature scheme of said voter; 

verifying, by said server module, that the digital signature (si) of the 
digitally signed in tho rocoivod data signal is valid; 

in cases where the verifying step confirms that the digital signature in the 
data signal received by said server module is valid, digitally signing bv said server 
module digitally oigna the blinded encrypted vote (ei) according to said fair blind 
digital scheme and outputs outputting bv said server module a digitally-signed 
message (£«(e/)); 

unblinding the digitally-signed message (S^e,)) to yield said digital 
signature (yd of the data signal (jc,); 

encrypting said data signal (xi) and said digital signature (yi) of the data 
signal thereof according to a second encryption scheme (E M ) to produce an 
encrypted data signal (c,); and 

signing said encrypted data signal (c,) according to the digital signature 
scheme of the voter QQ. 

10. (Currently Amended) An electronic voting system comprising: 

a plurality of voter modules each including a first processor; and 
an admin server module including a second processor; 
wherein the first processor[[, a]] of said plural voter modules modul e and 
the second processor in the admin server module cooperate during a respective 
signing session in application of a fair blind signature scheme to obtain, from said 
admin server module, a digital signature (yi) of a data signal (x ; ) from said one of 
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said plural [[a]] voter modules modulo, said data signal (x t ) comprising a 
respective vote (v ; ) of a voter, said fair blind signature scheme having a tracing 
protocol which enables a trusted authority apparatus to establish a link between a 
given digitally-signed data signal and a signing session in which said digital 
signature was generated. 

11. (Previously Presented) A voter module including a first processor configured to 
cooperate with a second processor in an admin server module during a respective signing session 
in application of a fair blind signature scheme to obtain, from said admin server module, a digital 
signature (y,) of a data signal (*,) from the voter module, said data signal (x t ) comprising a vote 
(v/) of a voter, said fair blind signature scheme having a tracing protocol which enables a trusted 
authority apparatus to establish a link between a given digitally-signed data signal and a signing 
session in which said digital signature was generated. 

12. (Currently Amended) A computer roadablo medium onoodod with a A computer 
program e xocutod by a computor that cauooo a executing on a first processor which, when used 
on a computer apparatus , causes the first processor to cooperate with a second processor in an 
admin server module during a respective signing session in application of a fair blind signature 
scheme, the computer program comprising: 

program code for obtaining, from said admin server module, a digital 
signature (y t ) of a data signal (xi), said data signal comprising a vote (v ( ) of a 
voter; and 

program code for establishing, at a trusted authority apparatus, a link 
between a given digitally-signed data signal and a signing session in which said 
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digital signature was generated, said trusted authority apparatus being enabled to 
establish the link via a tracing protocol included in the fair blind scheme. 

13. (Previously Presented) A voting system admin server module including a first 
processor configured to cooperate with a second processor in a voter module during a respective 
signing session in application of a fair blind signature scheme to obtain, from said admin server 
module, a digital signature (yi) of a data signal (*,) from said voter module, said data signal (*,-) 
comprising a vote (v,) of a voter, said fair blind signature scheme having a tracing protocol which 
enables a trusted authority apparatus to link a given digitally-signed data signal with a signing 
session in which said digital signature was generated by said admin server module. 

14. (Currently Amended) A computer roadablo modium oncodod with a A computer 
program that cauooo a executing on a first processor which, when used on a computer apparatus. 
causes the first processor to cooperate with a second processor in a voter module during a 
respective signing session in application of a fair blind signature scheme, the computer program 
comprising: 

program code for obtaining a digital signature (yi) of a data signal (xi) from 
said voter module, said data signal (*,) comprising a vote (v/) of a voter; and 

program code for establishing, at a trusted authority apparatus, a link 
between a given digitally-signed data signal and a signing session in which said 
digital signature was generated, said trusted authority apparatus being enabled to 
establish the link via a tracing protocol included in the fair blind scheme. 



15. (Previously Presented) A voting system ballot-order-randomizer module comprising a 
processor configured to provide: 

input means for receiving a batch of cast votes, each cast vote comprising 
an encrypted data signal (c/) comprising data (x,) indicative of a respective vote 
(v,) of a voter which is digitally signed according to a fair blind signature scheme, 
said fair blind signature scheme having a tracing protocol which enables a trusted 
authority apparatus to establish a link between a given digitally-signed data signal 
and a signing session in which said digital signature was generated, each 
encrypted data signal (c ( ) being encrypted according to a predetermined 
encryption scheme (E M ); 

a mix-net (M) for decrypting said encrypted data signals (c,) by applying a 
decryption scheme (D M ) which is an inverse of said predetermined encryption 
scheme (E M ); and 

output means for outputting the decrypted signals of said batch of cast 
votes in an order different from the order of corresponding encrypted data signals 
in said batch of cast votes. 

16. (Currently Amended) A computer readable m e dium encoded with a A computer 
program executing o n a processor which, when used on a computer apparatus, that causes a 
voting system ballot-order-randomizer to randomize a batch of cast votes, the computer program 
comprising: 

program code for receiving, at an input means, a batch of cast votes, each 
cast vote comprising an encrypted data signal (c ( ) comprising data (x,) indicative 
of a respective vote (v ( ) of a voter which is digitally signed according to a fair 
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blind signature scheme, said fair blind signature scheme having a tracing protocol 
which enables a trusted authority apparatus to establish a link between a given 
digitally-signed data signal and a signing session in which said digital signature 
was generated, each encrypted data signal (c,) being encrypted according to a 
predetermined encryption scheme (E M )\ 

program code for decrypting, at a mix-net (M), said encrypted data signals 
(c ( ) by applying a decryption scheme (Dm) which is an inverse of said 
predetermined encryption scheme (E M ); and 

program code for outputting, at an output means, the decrypted signals of 
said batch of cast votes in an order different from the order of corresponding 
encrypted data signals in said batch of cast votes. 

17. (Previously Presented) A voting system tallying module comprising a processor 
configured to provide: 

input means for receiving cast votes, each cast vote comprising a data 
signal (xi) digitally signed according to a fair blind signature scheme, said fair 
blind signature scheme having a tracing protocol which enables a trusted authority 
apparatus to establish a link between a given digitally-signed data signal and a 
signing session in which said digital signature was generated, each data signal (xi) 
comprising a respective vote (v,) of a voter which is encrypted according to an 
encryption scheme (Em); and 

a mix-net (M) for decrypting said encrypted votes (v f ) by applying a 
decryption scheme (D m ) which is an inverse of said encryption scheme (E TM ). 



18. (Currently Amended) A computer r e adablo medium e ncod e d with a A computer 
program executing on a processor which, when used on a computer apparatus, that causes 
tallying of cast votes, the computer program comprising: 

program code for receiving, at an input means, cast votes, each cast vote 
comprising a data signal (jc/) digitally signed according to a fair blind signature 
scheme, said fair blind signature scheme having a tracing protocol which enables 
a trusted authority apparatus to establish a link between a given digitally-signed 
data signal and a signing session in which said digital signature was generated, 
each data signal (xi) comprising a respective vote (v ; ) of a voter which is 
encrypted according to an encryption scheme (E T mY, and 

program code for decrypting, at a mix-net (M), said encrypted votes (v ; ) by 
applying a decryption scheme (D T m) which is an inverse of said encryption 
scheme (E T m)- 

19. (Canceled) 

20. (Currently Amended) The voting method of claim [[19]] 3, further comprising the 
steps of: 

receiving from a voter apparatus, at a server module of said signer 
apparatus, a plurality of voter data (Id L C L , e L . s i) during a voting process, one of 
said plural voter data comprising a signed blinded encrypted data fe/ ) 
corresponding to the encrypted vote (vi) of a respective voter, said vote being 
encrypted according to the first encryption scheme, blinded by said voter, and 
digitally signed by said voter. 
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when the voting process has ended, publishing a voter data list (L^) of all 
voter data received from the voter apparatus: 

s e tting a time period during which voting is authoriz e d; 

receiving from the voter apparatus, at a ballot-box module. 
communicating a plurality of e ncrypt o d ballot data signals (c& (Idu Q, a, a), one 
of said ballot data comprising a signed to a ballot box mnHulrv eaeh nf nniH plnml 
encrypted data signal (oft signals fa) including data from corresponding to the 
data signal (xi) of a respective voter encrypted (ci) according to a second 
encryption scheme (Em) of a second mix-net (M) contained in a vote-randomizing 
module, indicative of tho voto (v») of said voter and digitally-signed by said signer 
apparatus; and 

outputting, by said ballot box module, said oncrypted data signals (c f ) to 
said voto tallying modulo after oxpiration of tho timo period in which voting is 
authorized 

verifying the signature of said signed encrypted data signal (a): and 
when the voting process has ended, publishing a ballot data list (Lm\ of all 
ballot data having a valid voter signature . 

21. (Canceled) 

22. (New) The voting method of claim 3, comprising the steps of: 

receiving from a voter apparatus, at a server module of said signer 
apparatus, a plurality of voter data (Id it Q, e u si) during a voting process, one of 
said plural voter data comprising a signed blinded encrypted data (e ; ) 
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corresponding to the encrypted vote (v f ) of a respective voter, said vote being 
encrypted according to the first encryption scheme, blinded by said voter, and 
digitally signed by said voter, 

publishing a voter data list (L AS ) of all voter data received from the voter 
apparatus when the voting process has ended. 

23. (New) The voting method of claim 20, further comprising the steps of: 

comparing, by the server module of said signer apparatus, the voter data 
list (Las) of all voter data received from the voter apparatus with the ballot data 
list (L BB ) of all ballot data; and 

if there is an entry in the voter data list (L AS ) from which there is no 
corresponding entry in the ballot data list (L B b), applying a signature tracing 
algorithm of the fair blind signature scheme to identify the data pair (x b y t ) which 
is in the voter data list (L AS ) and which has no corresponding entry in the ballot 
data list (L BB ); and 

recording the identified data pair (x„ yj) in a revocation list (RL) containing 
ballots that have been rejected. 

24. (New) The voting method of claim 23, further comprising the steps of: 

receiving, by said vote-tallying module, a data pair list (L) of retrieved 
data pairs {x it yi); 

checking, at the vote-tallying module, said data pair list (L) of data pairs 
(xu yi) for duplicate entries; 
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if there are no duplicate entries, checking a validity of digital signatures 
(yi) of data pairs of the data pair list (£); 

if the signature of data pairs of the data pair list (L) is valid, comparing 
data pairs (x h yi) of the data pair list (L) with entries of the revocation list (RL); 

if there is no data pair of the data pair list (L) in the revocation list (RL) 
decrypting the data signal (xi) of the data pairs (* t yi) by applying the decryption 
scheme (D T m) which is an inverse of said first encryption scheme (E M ); 

tallying decrypted data signals (vO corresponding to votes of the voters; 

and 

publishing a voting result. 

25. (New) The voting method of claim 24, further comprising, when duplicate entries 
found, the steps of: 

prompting the particular mix-server (Mj) to generate a zero-knowledge 
proof of correctness using the data pair (x it yi) associated to a duplicate entry as 
input to a back-tracing protocol; and 

if a particular mix-server generates a proof of knowledge, revealing an 
identity of a misbehaving voter by implementing a back-tracing algorithm of a 
randomizing mix-net, using the data pair (x b yi) associated to the duplicate entry 
as input to the back-tracing protocol; 

adding the data pair to the revocation list; and 

removing the data pair from a list of votes to be counted. 
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26. (New) The voting method of claim 24, further comprising, when an invalid signature 
found, the steps of: 

prompting a particular mix-server (Mj) to generate a zero-knowledge proof 
of correctness using a data pair fa yi) associated to the invalid signature as input 
to a back-tracing protocol; 

if the particular mix-server generates a proof of knowledge, revealing an 
identity of a misbehaving voter by implementing a back-tracing algorithm of a 
randomizing mix-net, using the data pair associated to the invalid signature as 
input; and 

adding the data pair to the revocation list; and 
removing the data pair from a list of votes to be counted. 

27. (New) The voting method of claim 24, further comprising, when a data pair of the 
ta pair list is found in the revocation list, the steps of: 

prompting a particular mix-server (Mj) to generate a zero-knowledge proof 
of correctness using said data-pair (*,-, yi) found in the revocation list as input to a 
back-tracing protocol; 

if the particular mix-server generates a proof of knowledge, revealing an 
identity of a misbehaving voter by implementing a back-tracing algorithm of a 
randomizing mix-net, using said data pair found in the revocation list as input; 

adding said data pair to the revocation list; and 

removing said data pair from a list of votes to be counted. 
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